PT-2016-6162 · Borland+2 · Dx Library For Borland C+++2

Tomoya Kitagawa

Published

2016-06-19

Updated

2016-06-23

CVE-2016-4819

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions DX Library for Borland C++ versions 3.13f through 3.16b DX Library for Gnu C++ versions 3.13f through 3.16b DX Library for Visual C++ versions 3.13f through 3.16b

Description The issue allows remote attackers to execute arbitrary code via a crafted string, specifically through the printfDx function.

Recommendations For DX Library for Borland C++ versions 3.13f through 3.16b, consider disabling the printfDx function until a patch is available. For DX Library for Gnu C++ versions 3.13f through 3.16b, consider disabling the printfDx function until a patch is available. For DX Library for Visual C++ versions 3.13f through 3.16b, consider disabling the printfDx function until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2016-4819

Affected Products

Dx Library For Borland C++

Dx Library For Gnu C++

Dx Library For Visual C++

PT-2016-6162 · Borland+2 · Dx Library For Borland C+++2

CVE-2016-4819

Related Identifiers

Affected Products

References · 5